4 matches found
CVE-2023-44143
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Bamboo Mcr Bamboo Columns allows Stored XSS.This issue affects Bamboo Columns: from n/a through 1.6.1...
CVE-2023-44143
creationtimestamp| type| source ---|---|--- 2023-12-21 09:41:31+00:00| seen| Telegram/2OcNRp0XuZ272E4LFlirh2-lM0lK1bEv62nhT48jaf-BdBal...
CVE-2023-44143
CVE-2023-44143 concerns the WordPress Bamboo Columns plugin, affected versions through 1.6.1. The issue is a Stored Cross-Site Scripting (XSS) vulnerability caused by improper input neutralization and insufficient output escaping during web page generation. The exposure can allow attackers with a...
Bamboo Columns <= 1.6.1 - Authenticated (Contributor+) Stored Cross-Site Scripting
Description The Bamboo Columns plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and including, 1.6.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with contributor-level access and above, to inje...